The subscription proxy maintains a set of public keys corresponding to the private keys used by the CA Subscription server. The subscription proxy downloads subscription updates as a zip file that is digitally signed using a private key. The update identifies the public key to be used to check the signature of the update. Verifying the signature is how the subscription proxy ensures the update is from the CA Subscription server. There is only one public-private key pair used for a given subscription operation. A private key is used in signing the update; a public key is used for verifying the signature. The public key is stored at each CA User Activity Reporting Module server and can be updated.
CA User Activity Reporting Module stores the initial version of the public key in the Subscription Config file during installation. If a new private key is required, the associated public key is downloaded with the subscription update prior to the update cycle where the new key is needed.
Important! Do not manually update the Public Key field for subscription without explicit directions from CA Technical Support.
|
Copyright © 2013 CA.
All rights reserved.
|
|